Planning for device security

This section provides information about each HCL Traveler security option and how they can be applied by device type. You can use this information to plan your security configuration for HCL Traveler on your devices.

Table 1. Supported security options in HCL Traveler
HCL Traveler Support Security Option

Encrypted data in transit (through HTTPS)1

Domino® encrypted mail

S/MIME encrypted mail

Remote wipe

Encrypted data at rest

Password monitoring to allow or deny access

Application level password

Apple iOS Mail Client

Supported

Supported

With HCL Traveler companion application available from the Apple iTunes store

Supported.

Supported

HCL Traveler data wipe options

Supported with Domino® policies or HCL Traveler device preferences and security settings.

Whole devices can be encrypted, and enabled and enforced with the security policies in HCL Traveler. All supported iOS devices support hardware encryption.

Supported with Domino® policies or HCL Traveler device preferences and security settings.

Not supported

HCL Verse for iOS

Supported

Supported

Not supported.

Supported

HCL Traveler data wipe options

Supported

Supported with Domino policies or HCL Traveler device preferences and security settings

Supported

Enforceable from HCL Traveler device preferences and security settings.

HCL Verse for Android

Supported

Supported

Supported. For more information, see S/MIME Certificate Distribution and Management.

Supported

HCL Traveler data wipe options

Supported

All content is encrypted using 256bit encryption.

Supported with Domino® policies or HCL Traveler device preferences and security settings. Requires an Android 5.0 or higher device.

Supported. Enforceable from HCL Traveler device preferences and security settings

BlackBerry 10

Supported

Supported

Requires a BES to send encrypted mail from the device.

Not supported.

Supported

Device wipe; or when issued to a device managed by BES 10, it wipes only the work perimeter.

Supported

Supported with HCL Traveler device preferences and security settings

Not supported

Windows Phone

Supported

Not Supported

Not supported.

Supported

HCL Traveler data wipe options

Supported with Windows Phone 8 or higher versions.

Supported with HCL Traveler device preferences and security settings

Not supported

Windows Surface RT and Pro

Supported

Not Supported

Not supported.

Supported

HCL Traveler data wipe options

Supported

Supported with HCL Traveler device preferences and security settings

Not supported

1 The HCL Verse mobile applications and the HCL Companion application require that the connection to the Traveler server endpoint uses a trusted, non-expired SSL certificate. Although some third party applications (ex: the Apple iOS Mail client) may still support non-ssl connections, it is strongly recommended that the connection used by these clients is secured. This is most commonly done using an SSL connection but can also be accomplished by using a secure Virtual Private Network that is compatible with the mobile device. If the connection is not secured by one of these methods that provides encryption, then the data exchanged between the mobile client and the connection end point, including user ID and password data, could be susceptible to eavesdropping.

For additional information on defining security polices, refer to Assigning preferences and security settings to devices. For additional information on remotely wiping a device, refer to Remote wipe.